CyberRes Blog | Micro Focus Community

2021-12-29

0 1

Reimagining Cyber Podcast: Log4j vulnerability provides harsh lessons in unknown dependencies

In this week’s Reimagining Cyber podcast episode, “Log4j vulnerabilities: All you need to know and how to protect yourself,” Steve Springett, who leads software security for ServiceNow explains the Log4j vulnerabilities and their potential exploit. He also shares the process enterprises need to take to respond to OSS incidents and how some of the OWASP projects he is involved in can be used to mitigate risks.

by Stan Wisseman in CyberRes

2021-12-23

0 1

CyberRes Alliance Partner Awards

Announcing the 2021 CyberRes Alliance Partner Awards. Our partners have enabled hundreds of resources across the globe and helped lead our customers through their digital transformation and Cyber Resilience journey.

by Melina Vinci in CyberRes

2021-12-17

0 2

Fortify Response to Log4j (CVE-2021-44228)

Fortify Software Composition Analysis (SCA) is powered by our long-standing partnership with Sonatype and goes beyond a single comparison of declared dependencies against the National Vulnerability Database (NVD) by using natural language processing to dynamically monitor every commit and vulnerability site. It is capable of detecting the use of vulnerable Log4j versions throughout your software portfolio so you can…

by Brent_Jenkins in CyberRes

2021-12-17

0 1

An Application Security Solution to Support Your Cloud Transformation

Whether your app is fully cloud-native or just beginning to modernize, CyberRes Fortify has you covered every step of the way.

by Brent_Jenkins in CyberRes

2021-12-16

2 1

ArcSight Response to Log4j (CVE-2021-44228)—targeting Cyber Attacks

A free ArcSight detection package has been published on the ArcSight Marketplace to help ArcSight customers detect and monitor Log4j-targeting cyberattacks. We encourage customers of ArcSight ESM, ArcSight Logger, and ArcSight Recon to visit the page and deploy the content package. Learn more in our new #SecOps blog:

by Emrah Alpa in CyberRes

2021-12-15

0 2

Zero Trust is a Way of Thinking

The first key concept of zero trust is that it is not a solution, it's not a product, it's really a process, or a way of thinking. Zero trust is about thinking in terms of who you are, recognizing who is trying to access, and whether or not they should be able to access.

by Harley_Adams in CyberRes

2021-12-15

0 1

Reimagining Cyber Podcast: Data Analytics in Cyber: Work Smarter, Not Harder

Sara Anstey, Data Analytics Manager at Novacoast, shares her analytics expertise on our new podcast Podcast: and how it can help shape an org’s business and cyber model.

by cschelldorf in CyberRes

2021-12-14

0 1

Open-Source Software: The Risks and the Solution

The combination of Sonatype and Fortify is uniquely powerful for identifying and remediating open-source vulnerabilities. Fortify Software Composition Analysis gives agencies a complete 360-degree visibility into their application risks with remediation guidance on open-source risks

by John Fanguy in CyberRes

2021-12-13

10 3

Summary of CyberRes impact from Log4J or Log4shell/LogJam (CVE-2021-44228) | Summary of Cyberres impacted by Denial of Service (DOS) (CVE-2021-45046) | Summary of Cyberres impacted by DOS (CVE-2021-45105)

Micro Focus is continuing to analyze the remote code execution vulnerability (CVE-2021-44228) that has been identified in the Apache Log4j tool used in many Java-based applications.

by Security Specialist in CyberRes

2021-12-12

2 2

Test Data Management – The Steps to create Secure and Compliant test data and who owns it

What are the steps to create secure and compliant test data? Find out in our new data security blog:

by James McCann in CyberRes

Menu

CyberRes

Labels